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AMENDMENTS TO THE CLAIMS: 


1 , (Currently amended) A method of preventing counterfeiting of a smart card 
comprising: 

providing a smart card with a cryptographic structure for authorizing the smart card 
which cannot be accessed completely by a predetermined small number of readings, 

wherein said cryptographic structure can be built only by whoever emks the 
card or an agent thereof; a»d 

providing a reader for reading said smart card and including a database holding 
information related to unauthorized smart cards* said reader being on-line, such thai said 
reader is operativcly connected to a network, only when said database of said reader is being 
updated by said network, 

wherein said reader includes a random number generator, which, when a card 
is read, chooses a pair (a, b) of distinct numbers with a < b between 1 and N A 

wherein said smart card carries thereon predetermined N channels as Ch 
C2 CN. where N is an integer, 

wherein each channel Ci. with i equal to 1 * 2 M carries a pair ofnumbers 

(hi. ID. and 

wherein hi is the hixh number and H is the i <jl low number. 
wherein said reader obtains a content of only two of said channels, and 
periodically communicating, by said reader of said smart card with a database where 
a predetermined charac teristic of the card is checked. 
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2. (Canceled). 

3. (Original) The method of claim 1 , wherein an entire process of said method is 
pcrfbrmable off-line. 

4 4 (Canceled). 

5 , (Original) The method of claim 4, further comprising: 

using public key cryptography with associated encoding and decoding functions Vi 
and Vi" 1 in each channel i, 

wherein each function Vi* 1 is known publicly, and Vi is known only to a 
predetermined party representing an owner of the smart card. 

6, (Original) The method of claim 5, wherein for each i in 1 , 2 N, the pair (hi, li) is 
such that hi Vi(li), or hi = Vi(K(li)), where K represents a publicly-known cryptographic 
hash function, and 

wherein each li contains a plurality of symbols for redundancy. 

7, (Original) The method of claim 6, further comprising: 
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processing, using an invertible function f which is made public, such that the low 
numbers in said smart card satisfy - P(H), where P represents the j" 1 iteration of the 
function f. 

8. (Previously presented) The method of claim 6, wherein before processing the smart 
card, the reader obtains the pair (ha, la) and hb; 

using the public keys Va" 1 and Vb" 1 , checking by the reader whether the pairs (ha, la) 
and (hb, lb) are compatible, and, consequently, that the numbers ha, la, and hb belong to a 
same legitimate card. 

9-10. (Canceled). 

] 1 . (Original ) The method of claim 1 0, wherein the predetermined characteristic 
comprises whether a smart card has delivered more than a predetermined amount of money 
to a user of the smart card. 

12. (Original) The method of claim 1 1 , wherein if a card is detected as delivering too 
much money, the data base communicates a corresponding number 11 to ail readers in a 
network, so that smart cards carrying said corresponding number are declined. 

13. (Original) The method of claim 1, wherein said cryptographic structure is changed 
periodically* 
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14. (Original) The method of claim 1, wherein said smart card is invalidated after a 
predetermined time of usage. 

15. (Original) The method of claim 8, wherein said pairs (hi, li) to be contained on the 
smart card are generated by: 

choosing a prefix of 11 once for all transactions, or changed whenever needed, 
wherein said prefix is publicly known; and 

providing a sequence, such that the sequence is generated so that a same number is 
not chosen twice, and so that corresponding other IPs are not chosen as new lis. 

1 6. (Original) The method of claim i5, further comprising: 
concatenating the prefix and the sequence to form 11 ; and 

choosing a function f which is invcrtiblc and is publicly known, to construct 12 - 
f(!1), 13 -t(12), and so forth. 

1 7. (Original) The method of claim 1 6, wherein the function f is chosen to be the identity 
map, in which ease II "12 — 13 — ...-IN. 

18. (Original) The method of claim 17, choosing, for a number N, N public key-private 
key pairs, such that a first private key VI is for computing hi Vl(ll), a second private key 
V2 is for computing h2 V2(I2), and so on. 
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19. (Original) The method of claim 18, further comprising: 
verifying whether the smart card is authentic; and 

checking whether the smart card is not in a list of cards to be refused. 

20. (Previously presented) The method of claim 1, wherein, when the smart card is read 
by said reader, a random generator is prompted which provides two integer numbers, a and b, 
which are not between 1 and N, with a < b. 

2 1 . (Original) The method of claim 20, wherein said numbers a, b are transmitted to the 
smart card which delivers two high numbers ha, hb, and a low number la in a channel a, and 

wherein the pair (a, b), together with a function f in a memory in the reader, are used 
to compute the low number lb = f^la), said memory in said reader delivering public keys 
Va 1 and Vb" 1 . 

22. (Original) The method of claim 2 1 , wherein the public keys arc used by a comparator 
together with the pairs (ha, la) and (hb, lb), to verify that the pairs are compatible with the 
corresponding keys, and that the pairs are from a same legitimate card. 

23. (Previously presented) The method of claim I, further comprising: 
performing a final validation of the smart card by at least one of: 
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contacting a central data base if an entire transaction is made on-line with no 

penally; and 

checking with a local data base in said reader, said local database being 
refreshed periodically by contact between said local database and said central database. 

24. (Previously presented) A method of preventing counterfeiting of a smart curd, 
comprising: 

providing u smart card such that none of confidential information and a cryptographic 
key for authorizing the small card, is carried on the smart card; 

reading said card by a reader such that in each reading, said reader reads only a 
predetermined small amount of information which makes the card unique, 

wherein said reader includes a random number generator, which, when a card is read, 
chooses a pair (a, b) of distinct numbers with a < b between 1 and N. 

wherein before processing the smart card, the reader obtains the pair (ha. la) and hb; 

using the public keys Va" 1 and Vb~ l , cheeking by the reader whether the pairs (ha, la) 
and (hb, lb) are compatible, and, consequently, that the numbers ha, la, and hb belong to a 
same legitimate card. 

25. (Original) The method of claim 24, wherein a transaction performed under said 
method comprises substantially an off-line transaction. 

26. (Previously presented) A system tor preventing cloning of a smart card, comprising: 
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a smart card such thai a cryptographic structure for authorizing the smart card is not 
curried on the smart card; and 

a reader lor reading the smart card and including a database lor linking to a network 
and being updated periodically with a list of unauthorized smart cards, 

wherein said reader includes a random number generator, which, when a card is read, 
chooses a pair (a, b) of distinct numbers with a < b between 1 and N, 

wherein before processing the smart card, the reader obtains the pair (ha. la) and hb: 

using (he public keys Va' 1 and Vb" 1 , checking by the reader whether the pairs (ha, la) 
and (hb. lb) are compatible, and consequently, that the numbers ha, la, and hb belong to a 
same legitimate card, and 

wherein said cryptographic structure is kept secret by whoever emits the card or an 
agent thereof. 

27. (Previously presented) A signal-bearing medium tangibly embodying a program of 
machine-readable instructions executable by a digital processing apparatus to perform a 
method for preventing counterfeiting and cloning of smart cards, comprising: 

providing a smart card with a cryptographic structure for authorizing the smart card 
which cannot be accessed completely by a predetermined number of readings, 

reading said card by a reader such that in each reading, said reader reads only a 
predetermined small amount of information which makes the card unique, 

wherein said reader includes a random number generator, which, when a card is read, 
chooses a pair (a, b) of distinct numbers with a < b between 1 and N, 
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wherein before processing the srnari card, the reader obtains the pair (ha, la) and hb; 

using the public keys Va" 1 and Vb"\ checking by the reader whether the pairs (ha, la) 
and {hb, lb) arc compatible, and, consequently, that the numbers ha. la, and hb belong io a 
same legitimate card, and 

wherein said cryptographic structure can be built only by whoever emits the card or 
an agent thereof. 

28. (Previously presented) The method of claim 1 , wherein information stored on said 
smart card is devoid of confident ial information. 
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